Team IT Security (TSEC) Nachrichtenportal Logo

🕵️ CVE-2025-3248 | langflow-ai langflow up to 1.2.0 HTTP Request /api/v1/validate/code missing authentication


Nachrichtenbereich: 🕵️ Sicherheitslücken
🔗 Quelle: vuldb.com

A vulnerability has been found in langflow-ai langflow up to 1.2.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /api/v1/validate/code of the component HTTP Request Handler. The manipulation leads to missing authentication. This vulnerability is known as CVE-2025-3248. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component. ...

Sharing is caring on Social Media

Reddit
Telegram
LinkedIn
Xing
Twitter
Whatsapp
Facebook
Flipboard

🕵️ Medium CVE-2021-40892: Validate color project Validate color


📈 33.07 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-37014 | Langflow up to 0.6.19 HTTP POST Request /api/v1/custom_component Privilege Escalation


📈 32.55 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-7297 | Langflow up to 1.0.12 /api/v1/users dynamically-managed code resources


📈 28.53 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-9277 | Langflow up to 1.0.18 HTTP POST Request utils.py remaining_text redos


📈 27.45 Punkte
🕵️ Sicherheitslücken

🕵️ Cisco Application Services Engine API HTTP Request missing authentication


📈 26.66 Punkte
🕵️ Sicherheitslücken

🔧 Validate localhost API request processed by POSTMAN using Regular Expression


📈 25.79 Punkte
🔧 Programmierung

🕵️ CVE-2023-27163 | request-baskets up to 1.2.1 API Request /api/baskets/{name} server-side request forgery


📈 25.06 Punkte
🕵️ Sicherheitslücken

🔧 Seeking Expert Feedback: Kajabi, Stripe, and PayPal API Integration Code - Help Me Validate It!


📈 24.54 Punkte
🔧 Programmierung

🔧 How to Use the Langflow API in Node.js


📈 24.19 Punkte
🔧 Programmierung

🔧 How to Stream Responses from the Langflow API in Node.js


📈 24.19 Punkte
🔧 Programmierung

🕵️ CVE-2024-21855 | GoCast 1.1.3 HTTP API missing authentication (TALOS-2024-1962)


📈 22.99 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2022-35865 | BMC Track-It! 20.21.2.109 HTTP Request missing authentication (ZDI-22-968)


📈 22.52 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-4884 | Open5GS HTTP Request missing authentication


📈 22.52 Punkte
🕵️ Sicherheitslücken

⚠️ [remote] Langflow 1.3.0 - Remote Code Execution (RCE)


📈 22.48 Punkte
⚠️ PoC

🕵️ Critical Langflow Flaw Enables Malicious Code Injection – Technical Breakdown Released


📈 22.48 Punkte
🕵️ Hacking

🕵️ CVE-2015-5295 | OpenStack up to 2015.1.2/5.0.0 Orchestration API template-validate memory corruption (RHSA-2016:0266 / BID-81438)


📈 22.11 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2024-3116 | pgAdmin 4 up to 8.4 Validate Binary Path API Privilege Escalation (Issue 7326)


📈 22.11 Punkte
🕵️ Sicherheitslücken

🕵️ CVE-2023-32632 | Yifan YF325 1.0_20221108 Network Request validate.so diag_ping_start access control (TALOS-2023-1767)


📈 21.65 Punkte
🕵️ Sicherheitslücken

🕵️ Juniper Junos 12.1x44/12.1x45 Configuration Validator no-validate improper authentication


📈 21.42 Punkte
🕵️ Sicherheitslücken

🕵️ OpenStack bis 2015.1.2/5.0.0 Orchestration API template-validate erweiterte Rechte


📈 21.15 Punkte
🕵️ Sicherheitslücken

🕵️ OpenStack bis 2015.1.2/5.0.0 Orchestration API template-validate erweiterte Rechte


📈 21.15 Punkte
🕵️ Sicherheitslücken

🔧 Zod - Validate your API inputs with ease


📈 21.15 Punkte
🔧 Programmierung

🔧 Using Microsoft Learn API to Validate Power Platform Makers


📈 21.15 Punkte
🔧 Programmierung

🔧 Our weekly API report: Validate Linkedin Inmail, Air Quality and Hourly Air Quality


📈 21.15 Punkte
🔧 Programmierung

🔧 How to Validate Emails in PHP: regex, filter_var(), and API Explained


📈 21.15 Punkte
🔧 Programmierung

🔧 How to validate requests in Amazon API Gateway


📈 21.15 Punkte
🔧 Programmierung

🔧 How to validate your Next.js API with Zod and Typescript


📈 21.15 Punkte
🔧 Programmierung

🔧 Implementing BayarCash Payment API with Ruby: Validate Checksum


📈 21.15 Punkte
🔧 Programmierung

🔧 How to Validate AI API Responses with Zod and AJV (and Avoid Breaking Your Frontend)


📈 21.15 Punkte
🔧 Programmierung

📰 Legacy Stripe API Exploited to Validate Stolen Payment Cards in Web Skimmer Campaign


📈 21.15 Punkte
📰 IT Security Nachrichten

🕵️ New Web Skimming Attack Exploits Legacy Stripe API to Validate Stolen Card Data


📈 21.15 Punkte
🕵️ Hacking

🕵️ Validate input on request parameter active-tab.


📈 20.69 Punkte
🕵️ Sicherheitslücken

🔧 How to Validate Array Data in Laravel Using Request Classes


📈 20.69 Punkte
🔧 Programmierung

🕵️ CVE-2022-1388 | F5 BIG-IP up to 13.1.4/14.1.4.5/15.1.5.0/16.1.2.1 iControl REST Authentication /mgmt/tm/util/bash missing authentication (K23605346)


📈 20.48 Punkte
🕵️ Sicherheitslücken

🕵️ TIBCO FTP Community Edition up to 6.5.0 on Windows Server/C API/Golang API/Java API/.Net API access control


📈 20.4 Punkte
🕵️ Sicherheitslücken